- Summary
Nine years of direct experience in Information Security. Working in small, medium and large companies (Bank, Oil&Gas, Government, Technology). At BR Petrobras, as Senior Network Security Specialist at the Network Security and Infra Structure Team, I've acquired deep understanding and experience about the security issues that business operations of energy and petroleum commerce. My role consist of working with the development of security policies; provide 3rd level support for Network Operations Center; management of the network security infrastructure; provide consultancy for engineering and project management teams on design of security related architectures; relationship with suppliers ; incident handling, intrusion analysis/prevention. I had goals in other jobs by securing financial system (Brazilian Payment System - SPB), storage systems, clustering/high availability systems, network tunings and every related documentation.
- Specialties and Tools
Project Management, Relationship with Suppliers, Risk Analysis, Web Security, Forensic Analysis, Network Intrusion Detection/Prevention, Incident Handling, Design Network Security, Perimeter Security, Penetration Tests, Industrial Network Security, ITIL, Cobit, Sarbanes Oxley. Certification: LPIC.
Unix (*BSD, SystemV rel. 4, AIX), Linux (RedHat, SuSE, Debian, Slackware, and so), Windows, Cisco Routers, Storages (DAS, NAS, SAN), Checkpoint/Linux/BSD hi-ending firewalls & VPN’s, IBM MQSeries, any networking services with any operational systems like HTTP/HTTPS (Apache, IIS), Proxy, e-mail (postfix, sendmail, qmail, Microsoft Exchange, Lotus Notes), DNS, NTP, SNMP, SMTP, LDAP, POP, SSH/SCP, TELNET, FTP/TFTP, and so, NTLM, Kerberos, LDAP, Radius authentications. Knowledge in Mobile applications (J2ME) and GPS Tracking Systems. Programming knowledge in Java, PHP, ASP, Perl, Shellscript, C and HTML.
- Experience
2003-Present Petrobras Distrubuidora S.A. [government oil] RJ/BRA
(CPM S.A.: 2003-2006; Stefanini IT Consulting S.A.: Present)
Information Security Specialist
Project management of Information Security policies and solutions using PMI concepts, ITIL and Sarbanes Oxley.
Management of the network security infrastructure; provide consultancy
for engineering and project management teams on design of security
related architectures; incident handling, intrusion
analysis/prevention.
Some successful projects:
- Sarbanes-Oxley and ITIL for Information Security subjects;
- Intrusion Prevention and Detection system at critical perimeters;
- Checkpoint and SonicWall: Firewall and VPN implementation and administration for ~400 servers, ~7000 users and gas stations;
- Virtual Private Network (VPN) for company's Gas Stations using SonicWall and Juniper technologies;
- Storage Project for Lotus Notes application servers, Windows and Novell file servers through SAN and NAS snapshot technologies;
- High Availability Checkpoint firewall clustering (HA);
2001-2002 Banco BVA S.A. [investment bank] RJ/BRA
Network Support Analyst
Brazilian Payment System (SPB) Project implementation using MQSeries, Java and some cryptography technologies through National Finance Network System (RSFN) including its contingencies to the Central Bank of Brazil (BACEN);
General IT security and infra-structure projects.
2000-2001 Promon Tecnologia; Promon*IP [IT] RJ/BRA
Information Security Specialist
Deployment
infrastructure for great companies like OGlobo journal and it’s web
portal, Columbia Tristar Pictures nominated TOP3 iBest 2001, UBS Warbug
Bank, ONU’s intranet, and so.
These projects increased company’s international sales about 109% in one year.
- Education
2003 Centro Universitário do Rio de Janeiro - UniverCidade RJ/BRA
Information Technology, July 2006
2004 Linux Professional Institute VA/CAN
Linux Professional Institute Certified (LPIC)
Linux Professional Institute Certified (LPI-C101)
Linux Professional Institute Certified Administrator (LPI-C102)
(ID: LPI000031361).
CheckPoint RJ/BRA
(ID: CP0000038285).
- References
https://www.linkedin.com/in/netrap
https://www.xing.com/profile/Rafael_Granha